kovagoadi/hunfabric
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
5,655 Commits 1 Branch 1 Tag
035fcd6cc57fb0b0dd580f2e2ba0de3e9304a576
Commit Graph

1960 Commits

Author SHA1 Message Date
Ludo
035fcd6cc5 Merge remote-tracking branch 'origin/master' into fast-dev 2024-11-04 10:18:46 +01:00
Wiktor Niesiobędzki
3530393b28 Fix GCS bugs from ffa2602 2024-11-04 10:13:32 +01:00
Ludo
ffa2602e5e add support for cmek in gcs module notification topic 2024-11-04 09:03:24 +01:00
Ludo
b851d100e2 Merge remote-tracking branch 'origin/master' into fast-dev 2024-11-01 08:40:09 +01:00
Jacob Mammoliti
64cb097bae Add required enabled field introduced in Terraform version 5.41.0 (#2653) 2024-11-01 07:01:13 +00:00
Ludo
78f4e5c98d boilerplate for v36.0.0-rc1 2024-10-31 17:52:09 +01:00
Ludovico Magnocavallo
50ac3a5013 Refactor of FAST resource management and subsequent stages (#2648) 
* untested

* pllan testing

* fix stage 2s

* move providers to their own file

* single-environment stage 3

* fixes and moved blocks

* stage3 factory

* doc

* review comments

* review comments

* tfdoc

* fasts tage 1 tests

* netsec as stage 2

* fix backported roles

* fix backported roles

* tfdoc

* fixes

* fix tag value roles in stage 1

* remove checklist, fix stage 1 tests

* inventory

* Small bugfix

* refactor context tag values

* fix previous merge

* fix previous merge

* fix previous merge

* support short names for top level automation resources, change top level context variable

* fix new top level context

* roll back merge changes to stage 0 outputs

* roll back more merge changes

* linting errors

* tfdoc

* fix tests, roll back merge in tenants stage

* tfdoc

* fix inventory

* optional stage 2 env folders and tag bindings

* tflint

* damn tflint

* damn tflint

* tfdoc

* fix networking tests

* tflint

* fix test inventories

* tfdoc

* use coalesce for project parents

* fix billing role conditions

* fix billing role conditions

* security stage tested (ngw resources need fixing/porting)

* boilerplate

* fix inventory

* stage envs and stage linking script

* initial work on resman docs, update diagram, improve teams folder

* resman README

* fix stage 2 IAM delegation

* remove checklist from bootstrap

* stage 1 tests

* stage 0 1 and 2 tests

* tflint

* tflint

* tfdoc

* GCVE stage refactor (untested)

* GCVE stage refactor (untested)

* GCVE stage 3

* gcve tests

* tflint

* tfdoc

* fix links

* module tests

* stages README

* move network security to stage 2

* network security tests

* replace stage links in README files

* minimal netsec stage refactor

* use factory for iac org policies, add configurable drs org policy for iac

* test mt stage

* tfdoc

* fix cicd workflows

* fix cicd workflows

* gke-dev stage

* tflint

* remove data platform stage

* exclude provider files via tfdoc opts

* remove data platform tests and links

* fix merge

* fix resman inventory

* boilerplate

* inventory

---------

Co-authored-by: Simone Ruffilli <sruffilli@google.com>
 2024-10-31 16:55:54 +01:00
Julio Castillo
f5d05b3c3f Reorganize ADRs and new versioning ADR (#2642) 
* Reorganize ADRs and new versioning ADR

* Workflow examples

* Fix ADR links

* Changes discussed with ludoo

* Fix image reference

* Update image

* Fix typo

* Complet decision section

---------

Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
 2024-10-30 12:39:53 +01:00
Wiktor Niesiobędzki
8b7607af63 Codespell / whitespace fixes 2024-10-30 10:30:37 +01:00
Frits
b9fbdbcf7b feat(modules/secret-manager): add support for version_destroy_ttl 
Closes #2644
 2024-10-30 09:54:31 +01:00
Usama Shujaat
6db881da34 Add option to attach multiple snapshot schedule to disks (#2639) 
* Add changes to link mutiple Snapshot Schedule to a disk/boot disk

* Update Readme and fix for boot snapshot schedule

* Updating for_each expression, fix linting error

---------

Co-authored-by: usamashujaat <155731944+usamashujaat@users.noreply.github.com>
 2024-10-28 18:53:43 +01:00
Ludovico Magnocavallo
601f137c9b Fix ipv6 output in net-vpc module, add support for extra volumes in cloud run v2 module (#2638) 
* fix #2637

* fix #2635
 2024-10-24 08:36:20 +02:00
Joshua Wright
d4cff3eafa Add Project Factory Logging Data Option (#2625) 
* Add Logging Data Defaults to Data Defaults and Data Overrides

* Run TFDoc & FMT

---------

Co-authored-by: Julio Castillo <jccb@google.com>
 2024-10-17 10:54:42 +00:00
Benoît Sauvère
ce09c07ced fix(artifact-registry): fix a move issue with tf>1.7 (#2617) 
The TF 1.8 has introduced a new feature that makes the move failing:
> Providers can now transfer the ownership of a remote object between resources of different types, for situations where there are two different resource types that represent the same remote object type.
> This extends the moved block behavior to support moving between two resources of different types only if the provider for the target resource type declares that it can convert from the source resource type. Refer to provider documentation for details on which pairs of resource types are supported.
https://github.com/hashicorp/terraform/blob/v1.8/CHANGELOG.md#180-april-10-2024
 2024-10-11 11:41:05 +02:00
Ludovico Magnocavallo
bbe84a5ca8 add extra job revision attributes (#2608) 2024-10-07 11:45:59 +02:00
simonebruzzechesse
77b8f639ed alloydb variables refactor (#2599) 2024-10-06 11:49:15 +02:00
Benoît Sauvère
cb234fd35b feat: implement the new iam interface in artifact-registry (#2606) 
Co-authored-by: Julio Castillo <juliocc@users.noreply.github.com>
 2024-10-04 13:49:48 +00:00
Liam Nesteroff
163a0eab2b Allow manage existing SSM instance (#2595) 
* added option to manage an existing SSM instance

* switched depends on to try for instance iam

* added resource instance keys

* add instance keys to tests

* changed label default to null

* updated readme

* replaced try functions with conditional expressions for IAM
 2024-09-27 12:13:30 +02:00
apichick
3fad96436c Added biglake-catalog module (#2572) 2024-09-24 17:39:29 +02:00
simonebruzzechesse
7cf83842a7 Fix looker README and add custom url for looker instance module (#2593) 
* fix README and add custom url for looker instance
 2024-09-23 11:12:23 +02:00
Elia
dca6e383b7 Fix permadiff on iap attribute in net-lb-app-int module (#2590) 
* fixed attribute default

* fix blueprint inventory

* fix outputs

---------

Co-authored-by: Ludo <ludomagno@google.com>
 2024-09-20 11:35:18 +00:00
simonebruzzechesse
1f2bdd0033 New looker core module (#2565) 
* new looker core module
---------
Co-authored-by: Wiktor Niesiobędzki <wiktorn@google.com>
 2024-09-20 12:12:09 +02:00
Artem Bogdantsev
4bacbf5748 Project Module CMEK: added CloudRun (#2587) 
Added CloudRun to the list so that CloudRun service agent gets encryptor/decryptor role on CMEK
 2024-09-20 08:30:06 +00:00
Liam Nesteroff
9817d17c35 Add location for each IAM resource (#2586) 
Location field was missing causing an error
 2024-09-20 07:30:46 +00:00
apichick
0f28d266dd Secure source manager (#2569) 
* Added secure-source-manager-instance module

* Fixes after review
 2024-09-19 10:29:01 +00:00
apichick
8e0dac84f9 Bigquery dataset routines (#2570) 
* Added routines to bigquery-dataset module

* Fixes after review
 2024-09-19 09:13:32 +00:00
Ludovico Magnocavallo
cf5bba8b7f support secret-level expire time in secret manager module (#2583) 2024-09-19 10:35:43 +02:00
Wiktor Niesiobędzki
679218cde3 Fix e2e testsss for cloud run 2024-09-10 12:04:39 +02:00
Simone Ruffilli
7f8a02a405 Add support for google provider 6.x (#2536) 
* Add support for google provider 6.x

Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
Co-authored-by: Wiktor Niesiobędzki <wiktorn@google.com>
Co-authored-by: Julio Castillo <jccb@google.com>
 2024-09-05 10:35:58 +00:00
Julio Castillo
ba3e1be416 Bump provider to 5.43.1 ahead of next release (#2557) 2024-09-04 19:58:07 +02:00
oluakingcp
8a56836078 Updated the auto pilot gke security posture configuration (#2556) 
* updates the auto-pilot cluster configuration for security posture vulnerability mode

* updates the auto-pilot cluster configuration for security posture vulnerability mode

---------

Co-authored-by: Julio Castillo <jccb@google.com>
 2024-09-04 15:53:07 +02:00
oluakingcp
0e2127979f included the security_posture configuration (#2553) 
Co-authored-by: Julio Castillo <jccb@google.com>
 2024-09-04 15:29:18 +02:00
Wiktor Niesiobędzki
44a4268afc Fix E2E tests 2024-09-04 12:16:50 +02:00
Wiktor Niesiobędzki
e1c1ed3a23 Add IAM dependencies to outputs 2024-09-04 12:16:50 +02:00
Ludovico Magnocavallo
eb89c62b5f prepare v34.0.0 release (#2543) 2024-08-30 10:06:33 +02:00
jamesdalf
8ca3bc390f Module net-vpc fix for reserved ranges (#2538) 
* fix the reserved ranges

* updated readme

* formatting

* fix example test

---------

Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
 2024-08-30 05:10:28 +00:00
okguru1
dc0a27b8c2 Exposing aws_v4_authentication configuration in global external alb (#2539) 
* added disable_default_snat variable

* add an option to disable default snat

* tfdoc readme

* change order of variables

* modify variable to exist within vpc_config and have a null default,
creating a conditional dynamic block to provide backward compatability

* defining disable snat variable in autopilot as it is also an option

* fix conditional

* update readme

* null is implied in optional bool

* update readmes

* expose aws_v4_authentication configuration option

* terraform fmt

* update readme

* use dynamic block and optional for new variable
 2024-08-29 13:45:50 +00:00
Simone Ruffilli
09de7d67ff Add send_secondary_ip_range_if_empty=true to google_compute_subnetwork (#2537) 2024-08-28 14:00:08 +00:00
luigi-bitonti
815abc0afa Added max_run_duration field to compute_vm modules (#2533) 
Co-authored-by: Luigi Bitonti <luigi.bitonti@nttdata.com>
 2024-08-28 09:36:45 +00:00
Ludovico Magnocavallo
cecce6b3a0 Allow customizable prefix in net-vpc module PSA configs (#2535) 
* allow customizable prefix in net-vpc module PSA configs

* fix peered domain key
 2024-08-28 09:24:13 +00:00
kejti23
864a41cb20 Added ownership_scope argument for billing account (#2528) 
Co-authored-by: Julio Castillo <jccb@google.com>
 2024-08-28 09:08:14 +00:00
Julio Castillo
f57635d044 Add managed folders suports to gcs module (#2530) 
* Add RPO, make versioning dynamic

* Add manaed folders

* Change autoclass and cors defaults to null

* Update README

* Add iam_by_principals

* Add managed folders var description

* Remove need for managed folders to end in /

* Add inventory to example

* Update readme

* Fix FAST tests
 2024-08-28 07:30:52 +00:00
Julio Castillo
d4e727a482 Update stable provider too (#2531) 2024-08-28 08:49:46 +02:00
Julio Castillo
b3f272915e Update 20230816-iam-refactor.md 2024-08-27 18:34:05 +02:00
Julio Castillo
bab85c88ba Bump provider to last release of version 5 (#2525) 
* Bump provider to last release of version 5

* Remove default-versions copy in test env setup

* Use file instead of symlink in tools/lookfile

* Remove default-version reference

* Removed unused code
 2024-08-27 16:50:59 +02:00
Emile Hofsink
6cf0e5754b feat: Add security_policy to backend service configuration (#2523) 
* feat: Add security_policy to backend service configuration

* chore: updated README from tfdoc.py
 2024-08-27 14:19:14 +02:00
jamesdalf
cc5c04f62a net-vpc module add overlap CIDR subnet attribute (#2521) 
* add subnet allow_subnet_cidr_routes_overlap

* allow_subnet_cidr_routes_overlap default null

* set default null for factory subnets

---------

Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
 2024-08-26 19:48:26 +00:00
Artem Bogdantsev
1331e5655b project-module-cmek (#2518) 
Yet another typo was found
 2024-08-23 17:16:17 +00:00
Artem Bogdantsev
38c87debde project-cmek-smallfix (#2517) 
A nasty typo which causes the module to crash
 2024-08-23 18:39:21 +02:00
V0idC0de
548788dba1 fix: Make keys for local.projects consistent (#2516) 
Projects configured in `folders_data_path` have their filename as key, whereas those from `projects_data_path` have their path, relative to `projects_data_path` as key.
This causes different behavior when defining `local.projects` and subsequently calling `module.projects`, unless `name` is specified.
 2024-08-23 15:47:51 +00:00